[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: can't join domain (with new directory admin account)

Subject: Re: can't join domain (with new directory admin account)
From: John Gerth <email@hidden>
Date: Fri, 12 Aug 2005 18:20:31 -0700
Delivered-to: email@hidden
Delivered-to: email@hidden
User-agent: Mozilla Thunderbird 1.0.5 (Windows/20050711)

Daniel Wittenberg wrote:

Thanks for the info, but seems I've still got problems. I ran this command and get the following response:
[0]set_opendirectory_authenticator
opendirectorypdbconfig error(0)
Not sure exactly what this means, but if I view -b the opendirectorysam file it looks like it embeds the username and password in clear text (yippee). But when I go back to Windows and try to join I still get Access Denied. Looking at the samba log I noticed a couple errors that I'm not sure what they are and couldn't find any info on:
samr_io_userinfo_ctr: unknown switch level 0x1a
api_samr_set_userinfo: Unable to unmarshall SAMR_Q_SET_USERINFO.
decode_pw_buffer: incorrect password length (89613549).
decode_pw_buffer: check that 'encrypt passwords = yes'
Which I did double-check and encrypt is set to yes.

  Ulp...I haven't encountered this....looks like some length
  field in /var/db/samba/opendirectorysam got set wrong and
  so junk gets passed onward and the auth fails.

  Here's an 'xxd' dump of mine (suitably obfuscated) to compare to:
   # xxd opendirectorysam
     0000000: 6f64 7361 0000 0008 0000 0008 0000 0000  odsa............
     0000010: xxxx xxxx xxxx xxxx yyyy yyyy yyyy yyyy  xxxxxxxxyyyyyyyy

  where "xx" are characters in the userid and "yy" are in the password.
  They were both 8 chars so I can't tell you which of like length fields
  on the first line is which.


_______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden

This email sent to email@hidden

Prev by Date: Re: nmbd going down - Tiger 10.4.2
Next by Date: eDSInvalidAttributeType (-14131)
Previous by thread: RE: can't join domain (with new directory admin account)
Next by thread: IMAP issues
Index(es):
- Date
- Thread

Home